SEC issues draft taxonomy for comment on establishing machine readable format for submitting cyber incident disclosure filings

The Securities and Exchange Commission has published a draft taxonomy for public comment to enable publicly traded companies to submit required information for cyber incident disclosures through a machine-readable format.

“The Commission adopted rules requiring registrants to periodically disclose material cybersecurity incidents they experience and to disclose on an annual basis material information regarding their cybersecurity risk management, strategy, and governance,” the SEC said in a Monday notice on the controversial 2023 rulemaking.

The notice says, “As part of...